CVE-2023-6869

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Dec 19, 2023

Updated: Feb 2, 2024

Summary

CVE-2023-6869 is a vulnerability affecting Firefox versions below 121. Hackers could exploit a manipulated `<dialog>` element in a sandboxed iframe, causing content to be painted outside of the frame. This misrepresentation allows untrusted content to be displayed under the guise of trusted content. The potential impact includes security risks and potential privacy breaches. Users are advised to update their Firefox browsers to the latest version to mitigate this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/t0SB-n
https://www.cve.org/CVERecord?id=CVE-2023-6869
https://nvd.nist.gov/vuln/detail/CVE-2023-6869

Back to Vulnerability Database

CVE-2023-6869

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations